NEAS[.]7d4b2b3a7c4060534dc3e65fb4deace0[.]exe

General

Target

NEAS.7d4b2b3a7c4060534dc3e65fb4deace0.exe
Size

1.8MB
MD5

7d4b2b3a7c4060534dc3e65fb4deace0
SHA1

f9ec85d002eade6d7dc205c466ce914e02261d3e
SHA256

fd3766fd4f7097413db27f57781b9f028f73bfa98eabca301c5ad4caacf12786
SHA512

098f0523a05206aaa926073e5a1baf799222fc7983f5f15cc72df57e0a52bd24d1514134b4586b8a49bd63050d2300d3faf86e790184a14e343c3cd80f02b106
SSDEEP

24576:K6pQPxQ2JyP2r5mJV91xM7RpbwgIvs7Nxqlk8u9cu9N:KCqm2Jpr0nNM7Dus7Nx6k8u9cu9N

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.7d4b2b3a7c4060534dc3e65fb4deace0.exe

Files

NEAS.7d4b2b3a7c4060534dc3e65fb4deace0.exe
.exe windows:4 windows x64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 616KB - Virtual size: 620KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ayglEzVH
Size: 5KB - Virtual size: 5KB

plegtmQQ
Size: 5KB - Virtual size: 5KB

xJlmpWmA
Size: 5KB - Virtual size: 4KB

FLeZKZJK
Size: 11KB - Virtual size: 10KB

ShbflUdR
Size: 1KB - Virtual size: 1KB

ZjcQbWSn
Size: 512B - Virtual size: 173B

WBAcPLkk
Size: 4KB - Virtual size: 4KB

ksxglrmU
Size: 512B - Virtual size: 261B

ZZrAyqjv
Size: 26KB - Virtual size: 25KB

oBJnUkph
Size: 25KB - Virtual size: 25KB

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: 1.1MB - Virtual size: 1.1MB

UPX1 Size: 616KB - Virtual size: 620KB

UPX2 Size: 1024B - Virtual size: 4KB

ayglEzVH Size: 5KB - Virtual size: 5KB

plegtmQQ Size: 5KB - Virtual size: 5KB

xJlmpWmA Size: 5KB - Virtual size: 4KB

FLeZKZJK Size: 11KB - Virtual size: 10KB

ShbflUdR Size: 1KB - Virtual size: 1KB

ZjcQbWSn Size: 512B - Virtual size: 173B

WBAcPLkk Size: 4KB - Virtual size: 4KB

ksxglrmU Size: 512B - Virtual size: 261B

ZZrAyqjv Size: 26KB - Virtual size: 25KB

oBJnUkph Size: 25KB - Virtual size: 25KB

UPX0
Size: 1.1MB - Virtual size: 1.1MB

UPX1
Size: 616KB - Virtual size: 620KB

UPX2
Size: 1024B - Virtual size: 4KB

ayglEzVH
Size: 5KB - Virtual size: 5KB

plegtmQQ
Size: 5KB - Virtual size: 5KB

xJlmpWmA
Size: 5KB - Virtual size: 4KB

FLeZKZJK
Size: 11KB - Virtual size: 10KB

ShbflUdR
Size: 1KB - Virtual size: 1KB

ZjcQbWSn
Size: 512B - Virtual size: 173B

WBAcPLkk
Size: 4KB - Virtual size: 4KB

ksxglrmU
Size: 512B - Virtual size: 261B

ZZrAyqjv
Size: 26KB - Virtual size: 25KB

oBJnUkph
Size: 25KB - Virtual size: 25KB